How do I? - Page 276 - Burp Suite User Forum

Burp Scanner

I must be doing something wrong. How do I run Burp's Scanner as a point and click vulnerability scanner without it leaving XSS pop-ups in the site's production code? I had planned on reviewing the overall results of the...

Burp certificate in System's certificates but HTTPS doesn't work

I have an issue with my android emulators. I used this guide(https://blog.ropnop.com/configuring-burp-suite-with-android-nougat/) to add the burp certificate in the System's certificate and I can see it in the list. But...

Python Requests and Burp Suite

I wrote a blog post on routing the python requests library through burp suite with environment variables instead of setting the proxies and verify attributes each and every time you make a...

Uninstalling Burp Suite Enterprise

I can't seem to find an uninstall script within the installation files for Burp Suite Enterprise. I accidentally chose to install only the web server when I actually wanted to install the web server and agents. Any help...

Certificate

Hello, I am trying to navigate to usmc.mil webpages while proxy is set to "localhost" for interception. I am having an issue where FF is only trying to use Portswigger CA and the usmc.mil pages do not like that connection. I...

Browser Problem

I was having some problems with Burp Suite. The target tab wasn't showing a site that I navigated to. Portswigger emailed me and suggested that it might be my browser. Sure enough, once I changed to a new browser, everything...

Enable TLSv1.3 support

Hi everyone, Is it possible to use Burp with TLSv1.3 support? From some things I've read it sounds like people are using it for this purpose, but I Googled quite a bit and can't find any specific instructions on how to...

dashboard

Please forgive a complete newbie, but can anyone tell me where the Dashboard is?

How do I view the php request code in the browser

How do I view the php request code in the browser I would like to run a curl but without the http: // burp

Burp Academy Traing - Retrieving hidden data

Dear Team, Could you please solution videos as well. I am following solution steps but I am not able to Solve - Lab: SQL injection vulnerability in WHERE clause allowing retrieval of hidden data Thanks, Dilip

Start a Burp Suite Scan through an API call

Hi, We are trying to do Burp Scan using API (We use BurpSuite Professional). From this https://support.portswigger.net/customer/portal/questions/16805563-burp-command-line, we understand that there are some APIs are...

Delete custom scan configuration from library

In Burp Suite Professional V2.0.20beta how do I delete custom scan configuration from library? It does not seem to be that obvious. Thanks.

Oauth Login

Team, Does Burpsuite Enterprise edition support Oauth Authenticated scanning? Thanks!

Order confirmation (ref. 65392132/324319150/PO00041028)

Hi Team, When user try to download the license through account created, It shows that there is NO license allocated when in fact it has a purchase from our third party vendor Insight. Please see confirmation details...

Licença Software

Gostaria de saber se vocês emitem nota fiscal, preciso efetuar uma compra e preciso de uma nota fiscal comprovando a compra.

Burp Suite Enterprise integraiton with Jenkins

We are integrating Burp Suite Enterprise version with Jenkins. We are using plugin 'Burp Scan' in jenkins to design the job. Job details will be available on request. On running the job we are getting this...

Match and Replace response content in Intruder

I am working on a web application that generates a random length HTML comment in each response e.g.  I have a rule within Proxy / Options /...

login fails using Burp - site authenticates another site in azure

I'm trying to spider/scan a site and it works fine without Burp. When I use Burp I get login failed. The site authenticates with another site in Azure. Not sure how to configure Burp to make this work

Which AWS Instance is best for Burp Suite Enterprise Server and Agents?

I'm deploying Burp Suite Enterprise to AWS and am wondering which instance type would be best. Debating between the T3 or M5 series but not sure if BSE is a heavy CPU user all the time.

Burp Pro keeps giving me this java.io.IOException: Unicode String

The exception string is as follows: java.io.IOException: Unicode String at sun.awt.datatransfer.DataTransferer.translateTransferable(DataTransferer.java:1121) at...